Sara Friedman

Sara Friedman joined Inside Cybersecurity in February 2020. Previously, she covered government IT for GCN and education technology for THE Journal and Campus Technology. She graduated from Ithaca College with bachelor’s degrees in journalism and politics.

Connections
Archived Articles
Daily News | September 5, 2024

Deputy National Security Adviser for Cybersecurity Anne Neuberger highlighted the benefits of artificial intelligence when it comes to cybersecurity at the Billington Cybersecurity Summit and offered a sneak peek into a potential cyber executive order that will incorporate lessons learned.

The Insider | September 5, 2024

The Justice Department has announced the disruption of two covert foreign malign influence campaigns backed by the Russian government and targeted at impacting the 2024 election and spreading propaganda in support of the Russian invasion of Ukraine.

Daily News | August 22, 2024

Lawyers from two major law firms are flagging key aspects of the Pentagon's latest proposed rule to implement its Cybersecurity Maturity Model Certification program, with a focus on new requirements and other considerations for contractors.

Daily News | August 20, 2024

The Defense Department's proposed rule for acquisition purposes proposes alternative approaches to implement its Cybersecurity Maturity Model Certification program, while explaining why the Pentagon is moving forward with its preferred option.

Daily News | August 16, 2024

The Professional Services Council wants the Defense Department to focus on making its upcoming Cybersecurity Maturity Model Certification program "executable" for government contractors and the Pentagon, according to PSC president and CEO David Berteau, as the major initiative reaches a new milestone with the publication of a second rulemaking focused on acquisition.

Daily News | August 15, 2024

Stakeholders in the defense industrial base are gaining more clarity into the Defense Department's upcoming acquisition requirements for the Cybersecurity Maturity Model Certification program in a proposed rule published today in the Federal Register.

Daily News | August 14, 2024

The Defense Department has issued a long-awaited proposed rule to establish acquisition requirements for version 2.0 of the Pentagon's Cybersecurity Maturity Model Certification program, with details on the implementation timeline and supply chain flow-down to subcontractors.

Daily News | August 12, 2024

The second rulemaking to implement version 2.0 of the Pentagon's Cybersecurity Maturity Model Certification program has cleared the interagency regulatory review process at the Office of Management and Budget, setting up the potential for the closely watched initiative to be put into place by the end of the year.

Daily News | July 30, 2024

The National Defense Industrial Association is concerned over the Defense Department's ability to have enough capacity for the demand in assessments once the Cybersecurity Maturity Model Certification program gets up and running following the conclusion of the rulemaking process.

Daily News | July 26, 2024

The Cybersecurity and Infrastructure Security Agency should consider current reporting requirements for defense contractors as it continues work to implement a mandatory incident reporting regime that goes across critical infrastructure sectors, according to defense groups who filed comments on CISA's upcoming regulation.

Daily News | July 11, 2024

The Defense Department plans to finalize in November its first final rule for the Cybersecurity Maturity Model Certification program amending Title 32 of the Code of Federal Regulations, according to the latest unified agenda and regulatory plan.

Daily News | July 10, 2024

The Senate Armed Services Committee outlined its concerns over the implementation of the Pentagon's Cybersecurity Maturity Model Certification program and the upcoming launch of version 2.0 in the report accompanying its version of the fiscal year 2025 defense authorization bill.

Daily News | July 3, 2024

The technology sector raises several questions in its submission to the Cybersecurity and Infrastructure Security Agency on what constitutes a need for incident reporting under the upcoming mandatory regime, including how to address product security and potential reporting on vulnerabilities.

Daily News | July 1, 2024

The Defense Department has submitted the first final rule to implement its Cybersecurity Maturity Model Certification program to the White House Office of Management and Budget's Office of Information and Regulatory Affairs, marking a significant milestone in getting the necessary regulatory steps in order to officially launch the Pentagon initiative.

Daily News | June 26, 2024

The Commerce Department is using its review authority over foreign transactions in the information and communications technology and services sector to ban Kaspersky software from use in the United States, utilizing a controversial Trump-era rulemaking also leveraged under the Biden administration to address national security risks.

The Insider | June 21, 2024

Longtime National Security Agency official Kristina Walter is returning to her cyber roots, becoming chief of the intelligence agency's Cybersecurity Collaboration Center after a stint in charge of a federal initiative on workforce development.

Daily News | May 24, 2024

The House Armed Services Committee added amendments to the fiscal year 2025 defense authorization bill in a mark-up session requiring federal contractors to have a vulnerability disclosure policy and ordering studies from the Pentagon on critical infrastructure threats.

Daily News | May 22, 2024

The House Armed Services Committee kicks off the process today of marking up the fiscal year 2025 defense authorization bill, with proposals on the table to secure mobile devices used within the Defense Department, bring on voluntary cyber experts and address concerns over artificial intelligence costs.

Daily News | May 20, 2024

A proposed rule to amend the Defense Department’s acquisition policies for the Cybersecurity Maturity Model Certification program has entered the Office of Management and Budget review process.

Daily News | May 16, 2024

The National Institute of Standards and Technology's final update to two publications focused on controlled unclassified information puts in place "organization-defined parameters" and the ability for agencies to make determinations on what meets their needs.

Not a subscriber? Sign up for 30 days free access to exclusive, behind-the-scenes reporting on defense policy and procurement.